CERT-In Warns Of High-Risk Vulnerabilities In Google Chrome And Microsoft Edge

The Indian Computer Emergency Response Team (CERT-In) has recently issued a new alert to users regarding several high-risk vulnerabilities in Google Chrome and Microsoft Edge. The two browsers that are based on Google’s Chromium-based engine and used by millions of users across personal and business machines. These newly discovered vulnerabilities “could be exploited by an attacker to remotely execute the malicious code on the target affected system,” India’s cybersecurity agency CERT-In said in a statement.

The warning comes from the Chrome security team, which is advising that if you’re an individual or organisation browsing with Chrome or Edge on Windows, macOS and Linux, then it’s advisable to update your browsers as soon as possible.

ALSO READ: 2026 Will Be The Worst Time To Build PC: In 2026 Will Cost Much More As PC RAM And SSD Prices Hike In India

What CERT-In Has Flagged

In its advisory CIVN-2025-0355, CERT-In categorised the Google Chrome vulnerabilities as “high severity. If successfully used, these vulnerabilities could enable attackers to:

- Execute arbitrary code remotely

- Steal sensitive data stored on the system

- Gain elevated system privileges

- Bypass security restrictions and spoof browser behaviour

The flaws are a mix of technical bugs like Type Confusion, and in the implementation for various components such as Google Updater, DevTools, Downloads, and other browser modules. Type Confusion is introduced when a program reads memory using one type of data while expecting another, leading to an entry that the attacker can use to control the code execution.

Affected Chrome and Edge Versions

CERT-In confirmed that the following browser versions are vulnerable:

Google Chrome

- Versions prior to 143.0.7499.40 / .41 on Windows and macOS

- Versions prior to 143.0.7499.40 on Linux

Microsoft Edge

- Stable Channel versions prior to 143.0.3650.66

The Microsoft Edge vulnerabilities stem from the same root of Chromium issues found in Chrome and pose similar threats, such as remote code execution and data disclosure.

Why This Matters

Due to the fact that Chrome and Edge are deeply embedded in daily workflows—with banking, enterprise apps, email and cloud dashboards all hooked into them—successfully attacking could have a cataclysmic impact. An attacker could take control of systems if they could entice a user to visit a malicious website and do nothing else.

For organisations this also calls into question network-wide exposure when systems aren't updated immediately.A

ALSO READ: Starlink Subscription Price In India: Elon Musk Internet Service Monthly Subscription Price Revealed Ahead Of Launch

How to Protect Yourself

Updating the concerned browsers is highly applicable, CERT-In strongly advises. Users can protect themselves by:

1. Updating Google Chrome to version 143.0.7499.40 / .41

2. Updating Microsoft Edge to version 143.0.3650.66 or newer

Google Chrome users can check for updates by clicking a menu, then Help > About Google Chrome. New patches also will be automatically downloaded and installed by your browser. You may need to restart for changes to take effect.

Final Takeaway

These vulnerabilities illustrate why it’s so important to keep browsers up to date. Updates to Chrome and Edge are not just new features — they’re frequently security fixes that could guard against serious attacks. Waiting to update would allow systems to remain vulnerable to threats already being investigated or executed in the wild.